hazo_auth 1.6.2 → 1.6.4

package/README.md

@@ -680,6 +680,76 @@ layout_mode = standalone
 
 The `hazo_auth` package provides a comprehensive authentication and authorization system with role-based access control (RBAC). The main authentication utility is `hazo_get_auth`, which provides user details, permissions, and permission checking with built-in caching and rate limiting.
 
+### Client-Side API Endpoint (Recommended)
+
+#### `/api/hazo_auth/me` (GET) - Standardized User Info Endpoint
+
+**⚠️ IMPORTANT: Use this endpoint for all client-side authentication checks. It always returns the same standardized format with permissions.**
+
+This is the **standardized endpoint** that ensures consistent response format across all projects. It always includes permissions and user information in a unified structure.
+
+**Endpoint:** `GET /api/hazo_auth/me`
+
+**Response Format (Authenticated):**
+```typescript
+{
+  authenticated: true,
+  // Top-level fields (for backward compatibility)
+  user_id: string,
+  email: string,
+  name: string | null,
+  email_verified: boolean,
+  last_logon: string | undefined,
+  profile_picture_url: string | null,
+  profile_source: "upload" | "library" | "gravatar" | "custom" | undefined,
+  // Permissions (always included)
+  user: {
+    id: string,
+    email_address: string,
+    name: string | null,
+    is_active: boolean,
+    profile_picture_url: string | null,
+  },
+  permissions: string[],
+  permission_ok: boolean,
+  missing_permissions?: string[],
+}
+```
+
+**Response Format (Not Authenticated):**
+```typescript
+{
+  authenticated: false
+}
+```
+
+**Example Usage:**
+
+```typescript
+// Client-side (React component)
+const response = await fetch("/api/hazo_auth/me", {
+  method: "GET",
+  credentials: "include",
+});
+
+const data = await response.json();
+
+if (data.authenticated) {
+  console.log("User:", data.user);
+  console.log("Email:", data.email);
+  console.log("Permissions:", data.permissions);
+  console.log("Permission OK:", data.permission_ok);
+}
+```
+
+**Why Use `/api/hazo_auth/me`?**
+- ✅ **Standardized format** - Always returns the same structure
+- ✅ **Always includes permissions** - No need for separate permission checks
+- ✅ **Backward compatible** - Top-level fields work with existing code
+- ✅ **Single source of truth** - Prevents downstream variations
+
+**Note:** The `use_auth_status` hook automatically uses this endpoint and includes permissions in its return value.
+
 ### Server-Side Functions
 
 #### `hazo_get_auth` (Recommended)
@@ -917,13 +987,22 @@ enable_friendly_error_messages = true
 ## Profile Picture Menu Widget
 
 The Profile Picture Menu is a versatile component for navbar or sidebar that automatically displays:
-- **When authenticated**: User's profile picture with a dropdown menu containing user info, settings link, logout, and custom menu items
+- **When authenticated**: User's profile picture with a dropdown menu (navbar) or sidebar menu (sidebar) containing user info, settings link, logout, and custom menu items
 - **When not authenticated**: Sign Up and Sign In buttons (or a single button, configurable)
 
+### Variants
+
+The component supports two rendering variants:
+
+- **`dropdown`** (default): Renders as a clickable avatar that opens a dropdown menu. Use this for navbar/header contexts.
+- **`sidebar`**: Shows profile picture and name in a sidebar group. Clicking opens a dropdown menu with account actions. Use this inside `SidebarContent` for sidebar navigation.
+
 ### Basic Usage (Recommended)
 
 Use the `ProfilePicMenuWrapper` component which automatically loads configuration from `hazo_auth_config.ini`:
 
+#### Dropdown Variant (Navbar/Header)
+
 ```typescript
 // In your navbar or layout component
 import { ProfilePicMenuWrapper } from "hazo_auth/components/layouts/shared/components/profile_pic_menu_wrapper";
@@ -935,12 +1014,65 @@ export function Navbar() {
       <ProfilePicMenuWrapper 
         avatar_size="default" // "sm" | "default" | "lg"
         className="ml-auto"
+        // variant="dropdown" is the default
       />
     </nav>
   );
 }
 ```
 
+#### Sidebar Variant
+
+The sidebar variant shows only the profile picture and name. Clicking opens a dropdown menu with account actions:
+
+```typescript
+// In your sidebar component
+import { ProfilePicMenu } from "hazo_auth/components/layouts/shared";
+import { SidebarContent } from "hazo_auth/components/ui/sidebar";
+
+export function Sidebar() {
+  return (
+    <SidebarContent>
+      {/* Other sidebar groups */}
+      
+      {/* Profile menu as sidebar variant - shows avatar + name, clicking opens dropdown */}
+      <ProfilePicMenu 
+        variant="sidebar"
+        avatar_size="sm"
+        sidebar_group_label="Account" // Optional: defaults to "Account"
+        className="mt-auto" // Optional: push to bottom
+      />
+    </SidebarContent>
+  );
+}
+```
+
+### Direct Usage (Advanced)
+
+If you need more control, use `ProfilePicMenu` directly:
+
+```typescript
+import { ProfilePicMenu } from "hazo_auth/components/layouts/shared";
+
+// Dropdown variant (navbar)
+<ProfilePicMenu 
+  variant="dropdown"
+  avatar_size="sm"
+  settings_path="/settings"
+  logout_path="/api/logout"
+/>
+
+// Sidebar variant
+<ProfilePicMenu 
+  variant="sidebar"
+  avatar_size="sm"
+  sidebar_group_label="My Account"
+  custom_menu_items={[
+    { type: "link", label: "Dashboard", href: "/dashboard", order: 1, id: "dashboard" }
+  ]}
+/>
+```
+
 ### Configuration
 
 ```ini

package/SETUP_CHECKLIST.md

@@ -616,19 +616,51 @@ export default function CustomLoginPage() {
 
 Run these tests to verify your setup is working correctly.
 
-### Test 1: API Health Check
+### Test 1: API Health Check - Standardized `/api/hazo_auth/me` Endpoint
+
+**⚠️ IMPORTANT: Use `/api/hazo_auth/me` for all client-side authentication checks. It always returns a standardized format with permissions.**
 
 ```bash
 curl -s http://localhost:3000/api/hazo_auth/me | jq
 ```
 
-**Expected response:**
+**Expected response (not authenticated):**
 ```json
 {
   "authenticated": false
 }
 ```
 
+**Expected response (authenticated - standardized format):**
+```json
+{
+  "authenticated": true,
+  "user_id": "28fe0aff-29c7-407e-b92e-bf11a6a3332f",
+  "email": "test@example.com",
+  "name": "Test User",
+  "email_verified": false,
+  "last_logon": "2025-01-27T16:18:00.054Z",
+  "profile_picture_url": "https://gravatar.com/avatar/...",
+  "profile_source": "gravatar",
+  "user": {
+    "id": "28fe0aff-29c7-407e-b92e-bf11a6a3332f",
+    "email_address": "test@example.com",
+    "name": "Test User",
+    "is_active": true,
+    "profile_picture_url": "https://gravatar.com/avatar/..."
+  },
+  "permissions": [],
+  "permission_ok": true
+}
+```
+
+**Key Points:**
+- ✅ Always returns the same standardized format
+- ✅ Always includes `permissions` and `permission_ok` fields
+- ✅ Top-level fields (`user_id`, `email`, `name`) for backward compatibility
+- ✅ `user` object contains full user details
+- ✅ Use this endpoint instead of `/api/hazo_auth/get_auth` for client-side code
+
 ### Test 2: Registration API
 
 ```bash

package/dist/app/api/hazo_auth/me/route.d.ts

@@ -1,3 +1,32 @@
 import { NextRequest, NextResponse } from "next/server";
-export declare function GET(request: NextRequest): Promise<NextResponse<unknown>>;
+/**
+ * GET /api/hazo_auth/me
+ *
+ * Standardized endpoint that returns authenticated user information with permissions.
+ * Always returns the same format to prevent downstream variations.
+ *
+ * Response format (authenticated):
+ * {
+ *   authenticated: true,
+ *   user_id: string,
+ *   email: string,
+ *   name: string | null,
+ *   email_verified: boolean,
+ *   last_logon: string | undefined,
+ *   profile_picture_url: string | null,
+ *   profile_source: "upload" | "library" | "gravatar" | "custom" | undefined,
+ *   user: { id, email_address, name, is_active, profile_picture_url },
+ *   permissions: string[],
+ *   permission_ok: boolean,
+ *   missing_permissions?: string[],
+ * }
+ *
+ * Response format (not authenticated):
+ * {
+ *   authenticated: false
+ * }
+ */
+export declare function GET(request: NextRequest): Promise<NextResponse<{
+    authenticated: boolean;
+}>>;
 //# sourceMappingURL=route.d.ts.map

package/dist/app/api/hazo_auth/me/route.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"route.d.ts","sourceRoot":"","sources":["../../../../../src/app/api/hazo_auth/me/route.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAIxD,wBAAsB,GAAG,CAAC,OAAO,EAAE,WAAW,kCAuC7C"}
+{"version":3,"file":"route.d.ts","sourceRoot":"","sources":["../../../../../src/app/api/hazo_auth/me/route.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AASxD;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AACH,wBAAsB,GAAG,CAAC,OAAO,EAAE,WAAW;;IA0E7C"}

package/dist/app/api/hazo_auth/me/route.js

@@ -1,33 +1,93 @@
-// file_description: API route to get current authenticated user information
+// file_description: API route to get current authenticated user information with permissions
+// This is the standardized endpoint that always returns the same format including permissions
 // section: imports
 import { NextResponse } from "next/server";
-import { get_authenticated_user_with_response } from "../../../../lib/auth/auth_utils.server";
+import { hazo_get_auth } from "../../../../lib/auth/hazo_get_auth.server";
+import { get_hazo_connect_instance } from "../../../../lib/hazo_connect_instance.server";
+import { createCrudService } from "hazo_connect/server";
+import { map_db_source_to_ui } from "../../../../lib/services/profile_picture_source_mapper";
+import { create_app_logger } from "../../../../lib/app_logger";
+import { get_filename, get_line_number } from "../../../../lib/utils/api_route_helpers";
 // section: api_handler
+/**
+ * GET /api/hazo_auth/me
+ *
+ * Standardized endpoint that returns authenticated user information with permissions.
+ * Always returns the same format to prevent downstream variations.
+ *
+ * Response format (authenticated):
+ * {
+ *   authenticated: true,
+ *   user_id: string,
+ *   email: string,
+ *   name: string | null,
+ *   email_verified: boolean,
+ *   last_logon: string | undefined,
+ *   profile_picture_url: string | null,
+ *   profile_source: "upload" | "library" | "gravatar" | "custom" | undefined,
+ *   user: { id, email_address, name, is_active, profile_picture_url },
+ *   permissions: string[],
+ *   permission_ok: boolean,
+ *   missing_permissions?: string[],
+ * }
+ *
+ * Response format (not authenticated):
+ * {
+ *   authenticated: false
+ * }
+ */
 export async function GET(request) {
+    const logger = create_app_logger();
     try {
-        // Use centralized auth utility
-        const { auth_result, response } = await get_authenticated_user_with_response(request);
-        // If response is provided, it means cookies were cleared (invalid auth)
-        if (response) {
-            return response;
-        }
+        // Use hazo_get_auth to get user with permissions
+        const auth_result = await hazo_get_auth(request);
         // If not authenticated, return false
         if (!auth_result.authenticated) {
             return NextResponse.json({ authenticated: false }, { status: 200 });
         }
-        // Return user info
+        // Fetch additional user fields from database (email_verified, last_logon, profile_source)
+        const hazoConnect = get_hazo_connect_instance();
+        const users_service = createCrudService(hazoConnect, "hazo_users");
+        const users = await users_service.findBy({ id: auth_result.user.id });
+        if (!Array.isArray(users) || users.length === 0) {
+            logger.warn("me_endpoint_user_not_found", {
+                filename: get_filename(),
+                line_number: get_line_number(),
+                user_id: auth_result.user.id,
+                message: "User found in auth but not in database",
+            });
+            return NextResponse.json({ authenticated: false }, { status: 200 });
+        }
+        const user_db = users[0];
+        // Map database profile_source to UI representation
+        const profile_source_db = user_db.profile_source;
+        const profile_source_ui = profile_source_db ? map_db_source_to_ui(profile_source_db) : undefined;
+        // Return unified format with all fields
         return NextResponse.json({
             authenticated: true,
-            user_id: auth_result.user_id,
-            email: auth_result.email,
-            name: auth_result.name,
-            email_verified: auth_result.email_verified,
-            last_logon: auth_result.last_logon,
-            profile_picture_url: auth_result.profile_picture_url,
-            profile_source: auth_result.profile_source,
+            // Top-level fields for backward compatibility
+            user_id: auth_result.user.id,
+            email: auth_result.user.email_address,
+            name: auth_result.user.name,
+            email_verified: user_db.email_verified === true,
+            last_logon: user_db.last_logon || undefined,
+            profile_picture_url: auth_result.user.profile_picture_url,
+            profile_source: profile_source_ui,
+            // Permissions and user object (always included)
+            user: auth_result.user,
+            permissions: auth_result.permissions,
+            permission_ok: auth_result.permission_ok,
+            missing_permissions: auth_result.missing_permissions,
         }, { status: 200 });
     }
     catch (error) {
+        const error_message = error instanceof Error ? error.message : "Unknown error";
+        logger.error("me_endpoint_error", {
+            filename: get_filename(),
+            line_number: get_line_number(),
+            error_message,
+            error_stack: error instanceof Error ? error.stack : undefined,
+        });
         // On error, assume not authenticated
         return NextResponse.json({ authenticated: false }, { status: 200 });
     }

package/dist/components/layouts/shared/components/profile_pic_menu.d.ts

@@ -10,13 +10,17 @@ export type ProfilePicMenuProps = {
     custom_menu_items?: ProfilePicMenuMenuItem[];
     className?: string;
     avatar_size?: "default" | "sm" | "lg";
+    variant?: "dropdown" | "sidebar";
+    sidebar_group_label?: string;
 };
 /**
  * Profile picture menu component
  * Shows user profile picture when authenticated, or sign up/sign in buttons when not authenticated
- * Clicking profile picture opens dropdown menu with user info and actions
+ * Supports two variants:
+ * - "dropdown" (default): Clicking profile picture opens dropdown menu (for navbar/header)
+ * - "sidebar": Shows profile picture and name in sidebar, clicking opens dropdown menu (for sidebar navigation)
  * @param props - Component props including configuration options
  * @returns Profile picture menu component
  */
-export declare function ProfilePicMenu({ show_single_button, sign_up_label, sign_in_label, register_path, login_path, settings_path, logout_path, custom_menu_items, className, avatar_size, }: ProfilePicMenuProps): import("react/jsx-runtime").JSX.Element;
+export declare function ProfilePicMenu({ show_single_button, sign_up_label, sign_in_label, register_path, login_path, settings_path, logout_path, custom_menu_items, className, avatar_size, variant, sidebar_group_label, }: ProfilePicMenuProps): import("react/jsx-runtime").JSX.Element;
 //# sourceMappingURL=profile_pic_menu.d.ts.map

package/dist/components/layouts/shared/components/profile_pic_menu.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"profile_pic_menu.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/shared/components/profile_pic_menu.tsx"],"names":[],"mappings":"AAqBA,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,gDAAgD,CAAC;AAG7F,MAAM,MAAM,mBAAmB,GAAG;IAChC,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,iBAAiB,CAAC,EAAE,sBAAsB,EAAE,CAAC;IAC7C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,SAAS,GAAG,IAAI,GAAG,IAAI,CAAC;CACvC,CAAC;AAGF;;;;;;GAMG;AACH,wBAAgB,cAAc,CAAC,EAC7B,kBAA0B,EAC1B,aAAyB,EACzB,aAAyB,EACzB,aAAqC,EACrC,UAA+B,EAC/B,aAAwC,EACxC,WAAqC,EACrC,iBAAsB,EACtB,SAAS,EACT,WAAuB,GACxB,EAAE,mBAAmB,2CAuQrB"}
+{"version":3,"file":"profile_pic_menu.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/shared/components/profile_pic_menu.tsx"],"names":[],"mappings":"AA6BA,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,gDAAgD,CAAC;AAG7F,MAAM,MAAM,mBAAmB,GAAG;IAChC,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,iBAAiB,CAAC,EAAE,sBAAsB,EAAE,CAAC;IAC7C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,SAAS,GAAG,IAAI,GAAG,IAAI,CAAC;IACtC,OAAO,CAAC,EAAE,UAAU,GAAG,SAAS,CAAC;IACjC,mBAAmB,CAAC,EAAE,MAAM,CAAC;CAC9B,CAAC;AAGF;;;;;;;;GAQG;AACH,wBAAgB,cAAc,CAAC,EAC7B,kBAA0B,EAC1B,aAAyB,EACzB,aAAyB,EACzB,aAAqC,EACrC,UAA+B,EAC/B,aAAwC,EACxC,WAAqC,EACrC,iBAAsB,EACtB,SAAS,EACT,WAAuB,EACvB,OAAoB,EACpB,mBAA+B,GAChC,EAAE,mBAAmB,2CAmarB"}

package/dist/components/layouts/shared/components/profile_pic_menu.js

@@ -1,7 +1,8 @@
 // file_description: profile picture menu component for navbar or sidebar - shows profile picture when logged in, or sign up/sign in buttons when not logged in
+// Supports both dropdown (navbar) and sidebar variants
 // section: client_directive
 "use client";
-import { jsx as _jsx, Fragment as _Fragment, jsxs as _jsxs } from "react/jsx-runtime";
+import { jsx as _jsx, jsxs as _jsxs, Fragment as _Fragment } from "react/jsx-runtime";
 // section: imports
 import { useState, useMemo } from "react";
 import { useRouter } from "next/navigation";
@@ -9,6 +10,7 @@ import Link from "next/link";
 import { Avatar, AvatarImage, AvatarFallback } from "../../../ui/avatar";
 import { Button } from "../../../ui/button";
 import { DropdownMenu, DropdownMenuContent, DropdownMenuItem, DropdownMenuSeparator, DropdownMenuTrigger, } from "../../../ui/dropdown-menu";
+import { SidebarGroup, SidebarGroupLabel, SidebarMenu, SidebarMenuItem, SidebarMenuButton, } from "../../../ui/sidebar";
 import { Settings, LogOut } from "lucide-react";
 import { toast } from "sonner";
 import { use_auth_status, trigger_auth_status_refresh } from "../hooks/use_auth_status";
@@ -16,11 +18,13 @@ import { use_auth_status, trigger_auth_status_refresh } from "../hooks/use_auth_
 /**
  * Profile picture menu component
  * Shows user profile picture when authenticated, or sign up/sign in buttons when not authenticated
- * Clicking profile picture opens dropdown menu with user info and actions
+ * Supports two variants:
+ * - "dropdown" (default): Clicking profile picture opens dropdown menu (for navbar/header)
+ * - "sidebar": Shows profile picture and name in sidebar, clicking opens dropdown menu (for sidebar navigation)
  * @param props - Component props including configuration options
  * @returns Profile picture menu component
  */
-export function ProfilePicMenu({ show_single_button = false, sign_up_label = "Sign Up", sign_in_label = "Sign In", register_path = "/hazo_auth/register", login_path = "/hazo_auth/login", settings_path = "/hazo_auth/my_settings", logout_path = "/api/hazo_auth/logout", custom_menu_items = [], className, avatar_size = "default", }) {
+export function ProfilePicMenu({ show_single_button = false, sign_up_label = "Sign Up", sign_in_label = "Sign In", register_path = "/hazo_auth/register", login_path = "/hazo_auth/login", settings_path = "/hazo_auth/my_settings", logout_path = "/api/hazo_auth/logout", custom_menu_items = [], className, avatar_size = "default", variant = "dropdown", sidebar_group_label = "Account", }) {
     const router = useRouter();
     const authStatus = use_auth_status();
     const [isLoggingOut, setIsLoggingOut] = useState(false);
@@ -138,13 +142,44 @@ export function ProfilePicMenu({ show_single_button = false, sign_up_label = "Si
     };
     // Show loading state
     if (authStatus.loading) {
+        if (variant === "sidebar") {
+            return (_jsxs(SidebarGroup, { className: `cls_profile_pic_menu_sidebar ${className || ""}`, children: [_jsx(SidebarGroupLabel, { children: sidebar_group_label }), _jsx(SidebarMenu, { children: _jsx(SidebarMenuItem, { children: _jsx("div", { className: "h-10 w-10 rounded-full bg-[var(--hazo-bg-emphasis)] animate-pulse" }) }) })] }));
+        }
         return (_jsx("div", { className: `cls_profile_pic_menu ${className || ""}`, children: _jsx("div", { className: "h-10 w-10 rounded-full bg-[var(--hazo-bg-emphasis)] animate-pulse" }) }));
     }
     // Not authenticated - show sign up/sign in buttons
     if (!authStatus.authenticated) {
+        if (variant === "sidebar") {
+            return (_jsxs(SidebarGroup, { className: `cls_profile_pic_menu_sidebar ${className || ""}`, children: [_jsx(SidebarGroupLabel, { children: sidebar_group_label }), _jsx(SidebarMenu, { children: show_single_button ? (_jsx(SidebarMenuItem, { children: _jsx(SidebarMenuButton, { asChild: true, children: _jsx(Link, { href: register_path, className: "cls_profile_pic_menu_sign_up", children: sign_up_label }) }) })) : (_jsxs(_Fragment, { children: [_jsx(SidebarMenuItem, { children: _jsx(SidebarMenuButton, { asChild: true, children: _jsx(Link, { href: register_path, className: "cls_profile_pic_menu_sign_up", children: sign_up_label }) }) }), _jsx(SidebarMenuItem, { children: _jsx(SidebarMenuButton, { asChild: true, children: _jsx(Link, { href: login_path, className: "cls_profile_pic_menu_sign_in", children: sign_in_label }) }) })] })) })] }));
+        }
         return (_jsx("div", { className: `cls_profile_pic_menu flex items-center gap-2 ${className || ""}`, children: show_single_button ? (_jsx(Button, { asChild: true, variant: "default", size: "sm", children: _jsx(Link, { href: register_path, className: "cls_profile_pic_menu_sign_up", children: sign_up_label }) })) : (_jsxs(_Fragment, { children: [_jsx(Button, { asChild: true, variant: "outline", size: "sm", children: _jsx(Link, { href: register_path, className: "cls_profile_pic_menu_sign_up", children: sign_up_label }) }), _jsx(Button, { asChild: true, variant: "default", size: "sm", children: _jsx(Link, { href: login_path, className: "cls_profile_pic_menu_sign_in", children: sign_in_label }) })] })) }));
     }
-    // Authenticated - show profile picture with dropdown menu
+    // Authenticated - render based on variant
+    if (variant === "sidebar") {
+        // Sidebar variant: show profile picture and name only, clicking opens dropdown
+        return (_jsxs(SidebarGroup, { className: `cls_profile_pic_menu_sidebar ${className || ""}`, children: [_jsx(SidebarGroupLabel, { className: "cls_profile_pic_menu_sidebar_label", children: sidebar_group_label }), _jsx(SidebarMenu, { className: "cls_profile_pic_menu_sidebar_menu", children: _jsx(SidebarMenuItem, { className: "cls_profile_pic_menu_sidebar_user_info", children: _jsxs(DropdownMenu, { children: [_jsx(DropdownMenuTrigger, { asChild: true, children: _jsx("button", { className: "cls_profile_pic_menu_sidebar_trigger w-full focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-primary rounded-md", "aria-label": "Profile menu", children: _jsxs("div", { className: "cls_profile_pic_menu_sidebar_user flex items-center gap-3 px-2 py-2 hover:bg-sidebar-accent rounded-md transition-colors", children: [_jsxs(Avatar, { className: `cls_profile_pic_menu_avatar ${avatarSizeClasses[avatar_size]} cursor-pointer`, children: [_jsx(AvatarImage, { src: authStatus.profile_picture_url, alt: authStatus.name ? `Profile picture of ${authStatus.name}` : "Profile picture", className: "cls_profile_pic_menu_image" }), _jsx(AvatarFallback, { className: "cls_profile_pic_menu_fallback bg-[var(--hazo-bg-emphasis)] text-[var(--hazo-text-muted)]", children: getInitials() })] }), authStatus.name && (_jsx("span", { className: "cls_profile_pic_menu_sidebar_user_name text-sm font-medium text-sidebar-foreground truncate", children: authStatus.name }))] }) }) }), _jsx(DropdownMenuContent, { align: "end", className: "cls_profile_pic_menu_dropdown w-56", children: menuItems.map((item) => {
+                                        if (item.type === "separator") {
+                                            return _jsx(DropdownMenuSeparator, { className: "cls_profile_pic_menu_separator" }, item.id);
+                                        }
+                                        if (item.type === "info") {
+                                            return (_jsx("div", { className: "cls_profile_pic_menu_info", children: item.value && (_jsx("div", { className: "cls_profile_pic_menu_info_value px-2 py-1.5 text-sm text-foreground", children: item.value })) }, item.id));
+                                        }
+                                        if (item.type === "link") {
+                                            // Special handling for logout
+                                            if (item.id === "default_logout") {
+                                                return (_jsxs(DropdownMenuItem, { onClick: handleLogout, disabled: isLoggingOut, className: "cls_profile_pic_menu_logout cursor-pointer text-destructive focus:text-destructive", children: [_jsx(LogOut, { className: "mr-2 h-4 w-4" }), isLoggingOut ? "Logging out..." : item.label] }, item.id));
+                                            }
+                                            // Special handling for settings
+                                            if (item.id === "default_settings") {
+                                                return (_jsx(DropdownMenuItem, { asChild: true, className: "cls_profile_pic_menu_settings cursor-pointer", children: _jsxs(Link, { href: item.href || settings_path, children: [_jsx(Settings, { className: "mr-2 h-4 w-4" }), item.label] }) }, item.id));
+                                            }
+                                            // Generic link handling
+                                            return (_jsx(DropdownMenuItem, { asChild: true, className: "cls_profile_pic_menu_link cursor-pointer", children: _jsx(Link, { href: item.href || "#", children: item.label }) }, item.id));
+                                        }
+                                        return null;
+                                    }) })] }) }) })] }));
+    }
+    // Default dropdown variant: show profile picture with dropdown menu
     return (_jsx("div", { className: `cls_profile_pic_menu ${className || ""}`, children: _jsxs(DropdownMenu, { children: [_jsx(DropdownMenuTrigger, { asChild: true, children: _jsx("button", { className: "cls_profile_pic_menu_trigger focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-primary rounded-full", "aria-label": "Profile menu", children: _jsxs(Avatar, { className: `cls_profile_pic_menu_avatar ${avatarSizeClasses[avatar_size]} cursor-pointer`, children: [_jsx(AvatarImage, { src: authStatus.profile_picture_url, alt: authStatus.name ? `Profile picture of ${authStatus.name}` : "Profile picture", className: "cls_profile_pic_menu_image" }), _jsx(AvatarFallback, { className: "cls_profile_pic_menu_fallback bg-[var(--hazo-bg-emphasis)] text-[var(--hazo-text-muted)]", children: getInitials() })] }) }) }), _jsx(DropdownMenuContent, { align: "end", className: "cls_profile_pic_menu_dropdown w-56", children: menuItems.map((item) => {
                         if (item.type === "separator") {
                             return _jsx(DropdownMenuSeparator, { className: "cls_profile_pic_menu_separator" }, item.id);

package/dist/components/layouts/shared/components/profile_pic_menu_wrapper.d.ts

@@ -1,12 +1,14 @@
 export type ProfilePicMenuWrapperProps = {
     className?: string;
     avatar_size?: "default" | "sm" | "lg";
+    variant?: "dropdown" | "sidebar";
+    sidebar_group_label?: string;
 };
 /**
  * Server wrapper component that loads profile picture menu configuration from hazo_auth_config.ini
  * and passes it to the client ProfilePicMenu component
- * @param props - Component props including className and avatar_size
+ * @param props - Component props including className, avatar_size, variant, and sidebar_group_label
  * @returns ProfilePicMenu component with loaded configuration
  */
-export declare function ProfilePicMenuWrapper({ className, avatar_size, }: ProfilePicMenuWrapperProps): import("react/jsx-runtime").JSX.Element;
+export declare function ProfilePicMenuWrapper({ className, avatar_size, variant, sidebar_group_label, }: ProfilePicMenuWrapperProps): import("react/jsx-runtime").JSX.Element;
 //# sourceMappingURL=profile_pic_menu_wrapper.d.ts.map

package/dist/components/layouts/shared/components/profile_pic_menu_wrapper.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"profile_pic_menu_wrapper.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/shared/components/profile_pic_menu_wrapper.tsx"],"names":[],"mappings":"AAMA,MAAM,MAAM,0BAA0B,GAAG;IACvC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,SAAS,GAAG,IAAI,GAAG,IAAI,CAAC;CACvC,CAAC;AAGF;;;;;GAKG;AACH,wBAAgB,qBAAqB,CAAC,EACpC,SAAS,EACT,WAAW,GACZ,EAAE,0BAA0B,2CAiB5B"}
+{"version":3,"file":"profile_pic_menu_wrapper.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/shared/components/profile_pic_menu_wrapper.tsx"],"names":[],"mappings":"AAMA,MAAM,MAAM,0BAA0B,GAAG;IACvC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,SAAS,GAAG,IAAI,GAAG,IAAI,CAAC;IACtC,OAAO,CAAC,EAAE,UAAU,GAAG,SAAS,CAAC;IACjC,mBAAmB,CAAC,EAAE,MAAM,CAAC;CAC9B,CAAC;AAGF;;;;;GAKG;AACH,wBAAgB,qBAAqB,CAAC,EACpC,SAAS,EACT,WAAW,EACX,OAAoB,EACpB,mBAA+B,GAChC,EAAE,0BAA0B,2CAmB5B"}

package/dist/components/layouts/shared/components/profile_pic_menu_wrapper.js

@@ -7,10 +7,10 @@ import { get_profile_pic_menu_config } from "../../../../lib/profile_pic_menu_co
 /**
  * Server wrapper component that loads profile picture menu configuration from hazo_auth_config.ini
  * and passes it to the client ProfilePicMenu component
- * @param props - Component props including className and avatar_size
+ * @param props - Component props including className, avatar_size, variant, and sidebar_group_label
  * @returns ProfilePicMenu component with loaded configuration
  */
-export function ProfilePicMenuWrapper({ className, avatar_size, }) {
+export function ProfilePicMenuWrapper({ className, avatar_size, variant = "dropdown", sidebar_group_label = "Account", }) {
     const config = get_profile_pic_menu_config();
-    return (_jsx(ProfilePicMenu, { show_single_button: config.show_single_button, sign_up_label: config.sign_up_label, sign_in_label: config.sign_in_label, register_path: config.register_path, login_path: config.login_path, settings_path: config.settings_path, logout_path: config.logout_path, custom_menu_items: config.custom_menu_items, className: className, avatar_size: avatar_size }));
+    return (_jsx(ProfilePicMenu, { show_single_button: config.show_single_button, sign_up_label: config.sign_up_label, sign_in_label: config.sign_in_label, register_path: config.register_path, login_path: config.login_path, settings_path: config.settings_path, logout_path: config.logout_path, custom_menu_items: config.custom_menu_items, className: className, avatar_size: avatar_size, variant: variant, sidebar_group_label: sidebar_group_label }));
 }

package/dist/components/layouts/shared/components/sidebar_layout_wrapper.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"sidebar_layout_wrapper.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/shared/components/sidebar_layout_wrapper.tsx"],"names":[],"mappings":"AAwBA,KAAK,yBAAyB,GAAG;IAC/B,QAAQ,EAAE,KAAK,CAAC,SAAS,CAAC;CAC3B,CAAC;AAGF,wBAAgB,oBAAoB,CAAC,EAAE,QAAQ,EAAE,EAAE,yBAAyB,2CAuL3E"}
+{"version":3,"file":"sidebar_layout_wrapper.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/shared/components/sidebar_layout_wrapper.tsx"],"names":[],"mappings":"AAwBA,KAAK,yBAAyB,GAAG;IAC/B,QAAQ,EAAE,KAAK,CAAC,SAAS,CAAC;CAC3B,CAAC;AAGF,wBAAgB,oBAAoB,CAAC,EAAE,QAAQ,EAAE,EAAE,yBAAyB,2CAyK3E"}

package/dist/components/layouts/shared/components/sidebar_layout_wrapper.js

@@ -5,11 +5,11 @@ import { jsx as _jsx, jsxs as _jsxs } from "react/jsx-runtime";
 // section: imports
 import Link from "next/link";
 import { Sidebar, SidebarContent, SidebarGroup, SidebarGroupLabel, SidebarHeader, SidebarMenu, SidebarMenuButton, SidebarMenuItem, SidebarProvider, SidebarTrigger, SidebarInset, } from "../../../ui/sidebar";
-import { LogIn, UserPlus, BookOpen, ExternalLink, Database, KeyRound, MailCheck, Key, Settings, User } from "lucide-react";
+import { LogIn, UserPlus, BookOpen, ExternalLink, Database, KeyRound, MailCheck, Key, User } from "lucide-react";
 import { use_auth_status } from "../hooks/use_auth_status";
 import { ProfilePicMenu } from "./profile_pic_menu";
 // section: component
 export function SidebarLayoutWrapper({ children }) {
     const authStatus = use_auth_status();
-    return (_jsx(SidebarProvider, { children: _jsxs("div", { className: "cls_sidebar_layout_wrapper flex min-h-screen w-full", children: [_jsxs(Sidebar, { children: [_jsx(SidebarHeader, { className: "cls_sidebar_layout_header", children: _jsx("div", { className: "cls_sidebar_layout_title flex items-center gap-2 px-2 py-4", children: _jsx("h1", { className: "cls_sidebar_layout_title_text text-lg font-semibold text-sidebar-foreground", children: "hazo auth" }) }) }), _jsxs(SidebarContent, { className: "cls_sidebar_layout_content", children: [_jsxs(SidebarGroup, { className: "cls_sidebar_layout_test_group", children: [_jsx(SidebarGroupLabel, { className: "cls_sidebar_layout_group_label", children: "Test components" }), _jsxs(SidebarMenu, { className: "cls_sidebar_layout_test_menu", children: [_jsx(SidebarMenuItem, { className: "cls_sidebar_layout_test_login_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/login", className: "cls_sidebar_layout_test_login_link flex items-center gap-2", "aria-label": "Test login layout component", children: [_jsx(LogIn, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Test login" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_test_register_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/register", className: "cls_sidebar_layout_test_register_link flex items-center gap-2", "aria-label": "Test register layout component", children: [_jsx(UserPlus, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Test register" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_test_forgot_password_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/forgot_password", className: "cls_sidebar_layout_test_forgot_password_link flex items-center gap-2", "aria-label": "Test forgot password layout component", children: [_jsx(KeyRound, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Test forgot password" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_test_reset_password_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/reset_password", className: "cls_sidebar_layout_test_reset_password_link flex items-center gap-2", "aria-label": "Test reset password layout component", children: [_jsx(Key, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Test reset password" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_test_email_verification_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/verify_email", className: "cls_sidebar_layout_test_email_verification_link flex items-center gap-2", "aria-label": "Test email verification layout component", children: [_jsx(MailCheck, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Test email verification" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_sqlite_admin_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_connect/sqlite_admin", className: "cls_sidebar_layout_sqlite_admin_link flex items-center gap-2", "aria-label": "Open SQLite admin UI to browse and edit database", children: [_jsx(Database, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "SQLite Admin" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_user_management_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/user_management", className: "cls_sidebar_layout_user_management_link flex items-center gap-2", "aria-label": "Open User Management to manage users, roles, and permissions", children: [_jsx(User, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "User Management" })] }) }) })] })] }), authStatus.authenticated && (_jsxs(SidebarGroup, { className: "cls_sidebar_layout_account_group", children: [_jsx(SidebarGroupLabel, { className: "cls_sidebar_layout_group_label", children: "Account" }), _jsx(SidebarMenu, { className: "cls_sidebar_layout_account_menu", children: _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_my_settings_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/my_settings", className: "cls_sidebar_layout_my_settings_link flex items-center gap-2", "aria-label": "Open my settings page", children: [_jsx(Settings, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "My Settings" })] }) }) }) })] })), _jsxs(SidebarGroup, { className: "cls_sidebar_layout_resources_group", children: [_jsx(SidebarGroupLabel, { className: "cls_sidebar_layout_group_label", children: "Resources" }), _jsxs(SidebarMenu, { className: "cls_sidebar_layout_resources_menu", children: [_jsx(SidebarMenuItem, { className: "cls_sidebar_layout_storybook_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs("a", { href: "http://localhost:6006", target: "_blank", rel: "noopener noreferrer", className: "cls_sidebar_layout_storybook_link flex items-center gap-2", "aria-label": "Open Storybook preview for reusable components", children: [_jsx(BookOpen, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Storybook" }), _jsx(ExternalLink, { className: "ml-auto h-3 w-3", "aria-hidden": "true" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_docs_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs("a", { href: "https://ui.shadcn.com/docs", target: "_blank", rel: "noopener noreferrer", className: "cls_sidebar_layout_docs_link flex items-center gap-2", "aria-label": "Review shadcn documentation for styling guidance", children: [_jsx(BookOpen, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Shadcn docs" }), _jsx(ExternalLink, { className: "ml-auto h-3 w-3", "aria-hidden": "true" })] }) }) })] })] })] })] }), _jsxs(SidebarInset, { className: "cls_sidebar_layout_inset", children: [_jsxs("header", { className: "cls_sidebar_layout_main_header flex h-16 shrink-0 items-center gap-2 border-b px-4", children: [_jsx(SidebarTrigger, { className: "cls_sidebar_layout_trigger" }), _jsx("div", { className: "cls_sidebar_layout_main_header_content flex flex-1 items-center gap-2", children: _jsx("h2", { className: "cls_sidebar_layout_main_title text-lg font-semibold text-foreground", children: "hazo reusable ui library workspace" }) }), _jsx(ProfilePicMenu, { className: "cls_sidebar_layout_auth_status", avatar_size: "sm" })] }), _jsx("main", { className: "cls_sidebar_layout_main_content flex flex-1 items-center justify-center p-6", children: children })] })] }) }));
+    return (_jsx(SidebarProvider, { children: _jsxs("div", { className: "cls_sidebar_layout_wrapper flex min-h-screen w-full", children: [_jsxs(Sidebar, { children: [_jsx(SidebarHeader, { className: "cls_sidebar_layout_header", children: _jsx("div", { className: "cls_sidebar_layout_title flex items-center gap-2 px-2 py-4", children: _jsx("h1", { className: "cls_sidebar_layout_title_text text-lg font-semibold text-sidebar-foreground", children: "hazo auth" }) }) }), _jsxs(SidebarContent, { className: "cls_sidebar_layout_content", children: [_jsxs(SidebarGroup, { className: "cls_sidebar_layout_test_group", children: [_jsx(SidebarGroupLabel, { className: "cls_sidebar_layout_group_label", children: "Test components" }), _jsxs(SidebarMenu, { className: "cls_sidebar_layout_test_menu", children: [_jsx(SidebarMenuItem, { className: "cls_sidebar_layout_test_login_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/login", className: "cls_sidebar_layout_test_login_link flex items-center gap-2", "aria-label": "Test login layout component", children: [_jsx(LogIn, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Test login" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_test_register_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/register", className: "cls_sidebar_layout_test_register_link flex items-center gap-2", "aria-label": "Test register layout component", children: [_jsx(UserPlus, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Test register" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_test_forgot_password_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/forgot_password", className: "cls_sidebar_layout_test_forgot_password_link flex items-center gap-2", "aria-label": "Test forgot password layout component", children: [_jsx(KeyRound, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Test forgot password" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_test_reset_password_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/reset_password", className: "cls_sidebar_layout_test_reset_password_link flex items-center gap-2", "aria-label": "Test reset password layout component", children: [_jsx(Key, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Test reset password" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_test_email_verification_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/verify_email", className: "cls_sidebar_layout_test_email_verification_link flex items-center gap-2", "aria-label": "Test email verification layout component", children: [_jsx(MailCheck, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Test email verification" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_sqlite_admin_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_connect/sqlite_admin", className: "cls_sidebar_layout_sqlite_admin_link flex items-center gap-2", "aria-label": "Open SQLite admin UI to browse and edit database", children: [_jsx(Database, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "SQLite Admin" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_user_management_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs(Link, { href: "/hazo_auth/user_management", className: "cls_sidebar_layout_user_management_link flex items-center gap-2", "aria-label": "Open User Management to manage users, roles, and permissions", children: [_jsx(User, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "User Management" })] }) }) })] })] }), _jsx(ProfilePicMenu, { variant: "sidebar", avatar_size: "sm", className: "cls_sidebar_layout_profile_menu", sidebar_group_label: "Account" }), _jsxs(SidebarGroup, { className: "cls_sidebar_layout_resources_group", children: [_jsx(SidebarGroupLabel, { className: "cls_sidebar_layout_group_label", children: "Resources" }), _jsxs(SidebarMenu, { className: "cls_sidebar_layout_resources_menu", children: [_jsx(SidebarMenuItem, { className: "cls_sidebar_layout_storybook_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs("a", { href: "http://localhost:6006", target: "_blank", rel: "noopener noreferrer", className: "cls_sidebar_layout_storybook_link flex items-center gap-2", "aria-label": "Open Storybook preview for reusable components", children: [_jsx(BookOpen, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Storybook" }), _jsx(ExternalLink, { className: "ml-auto h-3 w-3", "aria-hidden": "true" })] }) }) }), _jsx(SidebarMenuItem, { className: "cls_sidebar_layout_docs_item", children: _jsx(SidebarMenuButton, { asChild: true, children: _jsxs("a", { href: "https://ui.shadcn.com/docs", target: "_blank", rel: "noopener noreferrer", className: "cls_sidebar_layout_docs_link flex items-center gap-2", "aria-label": "Review shadcn documentation for styling guidance", children: [_jsx(BookOpen, { className: "h-4 w-4", "aria-hidden": "true" }), _jsx("span", { children: "Shadcn docs" }), _jsx(ExternalLink, { className: "ml-auto h-3 w-3", "aria-hidden": "true" })] }) }) })] })] })] })] }), _jsxs(SidebarInset, { className: "cls_sidebar_layout_inset", children: [_jsxs("header", { className: "cls_sidebar_layout_main_header flex h-16 shrink-0 items-center gap-2 border-b px-4", children: [_jsx(SidebarTrigger, { className: "cls_sidebar_layout_trigger" }), _jsx("div", { className: "cls_sidebar_layout_main_header_content flex flex-1 items-center gap-2", children: _jsx("h2", { className: "cls_sidebar_layout_main_title text-lg font-semibold text-foreground", children: "hazo reusable ui library workspace" }) }), _jsx(ProfilePicMenu, { className: "cls_sidebar_layout_auth_status", avatar_size: "sm" })] }), _jsx("main", { className: "cls_sidebar_layout_main_content flex flex-1 items-center justify-center p-6", children: children })] })] }) }));
 }

package/dist/components/layouts/shared/hooks/use_auth_status.d.ts

@@ -7,6 +7,9 @@ export type AuthStatusData = {
     last_logon?: string;
     profile_picture_url?: string;
     profile_source?: "upload" | "library" | "gravatar" | "custom";
+    permissions?: string[];
+    permission_ok?: boolean;
+    missing_permissions?: string[];
     loading: boolean;
 };
 export type AuthStatus = AuthStatusData & {

package/dist/components/layouts/shared/hooks/use_auth_status.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"use_auth_status.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/shared/hooks/use_auth_status.ts"],"names":[],"mappings":"AAQA,MAAM,MAAM,cAAc,GAAG;IAC3B,aAAa,EAAE,OAAO,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,cAAc,CAAC,EAAE,QAAQ,GAAG,SAAS,GAAG,UAAU,GAAG,QAAQ,CAAC;IAC9D,OAAO,EAAE,OAAO,CAAC;CAClB,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG,cAAc,GAAG;IACxC,OAAO,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC9B,CAAC;AAMF;;GAEG;AACH,wBAAgB,2BAA2B,IAAI,IAAI,CAIlD;AAGD,wBAAgB,eAAe,IAAI,UAAU,CA+D5C"}
+{"version":3,"file":"use_auth_status.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/shared/hooks/use_auth_status.ts"],"names":[],"mappings":"AAQA,MAAM,MAAM,cAAc,GAAG;IAC3B,aAAa,EAAE,OAAO,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,cAAc,CAAC,EAAE,QAAQ,GAAG,SAAS,GAAG,UAAU,GAAG,QAAQ,CAAC;IAC9D,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC/B,OAAO,EAAE,OAAO,CAAC;CAClB,CAAC;AAEF,MAAM,MAAM,UAAU,GAAG,cAAc,GAAG;IACxC,OAAO,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC9B,CAAC;AAMF;;GAEG;AACH,wBAAgB,2BAA2B,IAAI,IAAI,CAIlD;AAGD,wBAAgB,eAAe,IAAI,UAAU,CAkE5C"}

package/dist/components/layouts/shared/hooks/use_auth_status.js

@@ -21,6 +21,7 @@ export function use_auth_status() {
         loading: true,
     });
     const checkAuth = useCallback(async () => {
+        var _a;
         setAuthStatus((prev) => (Object.assign(Object.assign({}, prev), { loading: true })));
         try {
             const response = await fetch("/api/hazo_auth/me", {
@@ -38,6 +39,9 @@ export function use_auth_status() {
                     last_logon: data.last_logon,
                     profile_picture_url: data.profile_picture_url,
                     profile_source: data.profile_source,
+                    permissions: data.permissions || [],
+                    permission_ok: (_a = data.permission_ok) !== null && _a !== void 0 ? _a : true,
+                    missing_permissions: data.missing_permissions,
                     loading: false,
                 });
             }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "hazo_auth",
-  "version": "1.6.2",
+  "version": "1.6.4",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "type": "module",